
Scammers Impersonate IT Support on Microsoft Teams: How to Spot Fake Help Calls
Criminals are calling workers through Microsoft Teams, pretending to be company tech support, to trick them into installing malware on work computers.
Source
BleepingComputer
Original headline: Fake IT support calls on Microsoft Teams push EtherRAT malware
Plain-English summary by GetCyberRight. Read the full report at the source above.
Cybercriminals have started a new scam where they call people through Microsoft Teams voice calls, pretending to be IT support staff from the victim's own company. The scammers convince employees that there is a technical problem and talk them through steps to fix it. These steps actually install malware called EtherRAT on the work computer, giving attackers access to the entire corporate network.
This attack primarily targets people at their workplaces, not personal or home Microsoft accounts. If you or your spouse uses Microsoft Teams for work, you could receive one of these fake support calls. The scammers are convincing because they use Teams itself, which makes the call seem legitimate and internal to your company. Once the malware is installed, attackers can steal company data, passwords, and potentially access systems containing employee personal information.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
If you use Microsoft Teams at work, take these steps immediately. First, never follow technical instructions from someone who calls you unexpectedly, even if they appear to be calling through Teams. Second, if someone claiming to be IT support contacts you, hang up and call your actual IT department using the phone number or contact method you already have. Third, tell your workplace about this threat so they can warn other employees. Fourth, never download or install software because someone on a call told you to do so.
Make it a rule to be suspicious of unexpected help. Real IT departments usually create support tickets and have verification processes. They rarely cold call employees and ask them to install things immediately. Apply this same caution at home: legitimate tech companies like Microsoft, Apple, or your internet provider will never call you out of the blue asking you to install software or provide remote access to your computer. When in doubt, hang up and contact the company yourself using an official phone number from their website.
Curated from trusted cybersecurity sources by GetCyberRight
Source: BleepingComputerStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

AI Used in Ransomware Attack, But Humans Still Calling the Shots
A recent ransomware attack used AI to execute technical steps, but criminals still controlled the important decisions. Your basic security habits remain your best defense.
2 min read
AI Helps Hacker Attack a Company, But Humans Still Run the Show
AI tools are making attacks faster, but criminals still need technical skills and planning. Your current security habits remain your best defense.
2 min read
Canadian Intelligence Agency Took Action Against Criminal Groups
Canada's Communications Security Establishment conducted offensive operations against ransomware criminals, extremist groups, and drug traffickers in 2025.
2 min read
Canadian Spy Agency Fights Back Against Criminal Hackers
Canada's cybersecurity agency hacked three criminal groups in 2025, including ransomware gangs. This is good news for potential victims of these criminals.
2 min read